summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* set versionsphp-7.0.8PHP-7.0.8Anatol Belski2016-06-213-4/+4
|
* sync NEWSAnatol Belski2016-06-211-6/+31
|
* fix two remaining testsAnatol Belski2016-06-212-5/+32
|
* fix testAnatol Belski2016-06-211-3/+3
| | | | | | There is a difference between TS and NTS warning message, since virtual_mkdir vs glibc directly is used. This has no effect for the actual fix functionality.
* re-fix leakAnatol Belski2016-06-211-0/+1
|
* bump zip versionRemi Collet2016-06-211-1/+1
|
* remove the huge test file, generate it on the fly insteadAnatol Belski2016-06-212-1/+23
|
* Merge branch 'PHP-5.6.23' into PHP-7.0.8Stanislav Malyshev2016-06-2121-5/+246
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.6.23: (24 commits) iFixed bug #72446 - Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow update NEWS fix tests fix build Fix bug #72455: Heap Overflow due to integer overflows Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize Fixed ##72433: Use After Free Vulnerability in PHP's GC algorithm and unserialize Fix bug #72407: NULL Pointer Dereference at _gdScaleVert Fix bug #72402: _php_mb_regex_ereg_replace_exec - double free Fix bug #72298 pass2_no_dither out-of-bounds access Fixed #72339 Integer Overflow in _gd2GetHeader() resulting in heap overflow Fix bug #72262 - do not overflow int Fix bug #72400 and #72403 - prevent signed int overflows for string lengths Fix bug #72275: don't allow smart_str to overflow int Fix bug #72340: Double Free Courruption in wddx_deserialize update NEWS Fix #66387: Stack overflow with imagefilltoborder Fix bug #72321 - use efree() for emalloc allocation 5.6.23RC1 Fix bug #72140 (segfault after calling ERR_free_strings()) ... Conflicts: configure.in ext/mbstring/php_mbregex.c ext/mcrypt/mcrypt.c ext/spl/spl_array.c ext/spl/spl_directory.c ext/standard/php_smart_str.h ext/standard/string.c ext/standard/url.c ext/wddx/wddx.c ext/zip/php_zip.c main/php_version.h
| * Merge branch 'PHP-5.5' into PHP-5.6.23Stanislav Malyshev2016-06-2121-243/+450
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.5: Fixed bug #72446 - Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow update NEWS fix tests fix build Fix bug #72455: Heap Overflow due to integer overflows Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize Fixed ##72433: Use After Free Vulnerability in PHP's GC algorithm and unserialize Fix bug #72407: NULL Pointer Dereference at _gdScaleVert Fix bug #72402: _php_mb_regex_ereg_replace_exec - double free Fix bug #72298 pass2_no_dither out-of-bounds access Fixed #72339 Integer Overflow in _gd2GetHeader() resulting in heap overflow Fix bug #72262 - do not overflow int Fix bug #72400 and #72403 - prevent signed int overflows for string lengths Fix bug #72275: don't allow smart_str to overflow int Fix bug #72340: Double Free Courruption in wddx_deserialize update NEWS Fix #66387: Stack overflow with imagefilltoborder Skip test which is 64bits only 5.5.37 now Conflicts: configure.in ext/mcrypt/mcrypt.c ext/spl/spl_directory.c main/php_version.h
| | * iFixed bug #72446 - Integer Overflow in gdImagePaletteToTrueColor() ↵Stanislav Malyshev2016-06-202-9/+15
| | | | | | | | | | | | resulting in heap overflow
| | * update NEWSStanislav Malyshev2016-06-201-1/+30
| | |
| | * Merge branch 'PHP-5.5.37' into PHP-5.5Stanislav Malyshev2016-06-2020-246/+449
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.5.37: fix tests fix build Fix bug #72455: Heap Overflow due to integer overflows Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize Fixed ##72433: Use After Free Vulnerability in PHP's GC algorithm and unserialize Fix bug #72407: NULL Pointer Dereference at _gdScaleVert Fix bug #72402: _php_mb_regex_ereg_replace_exec - double free Fix bug #72298 pass2_no_dither out-of-bounds access Fixed #72339 Integer Overflow in _gd2GetHeader() resulting in heap overflow Fix bug #72262 - do not overflow int Fix bug #72400 and #72403 - prevent signed int overflows for string lengths Fix bug #72275: don't allow smart_str to overflow int Fix bug #72340: Double Free Courruption in wddx_deserialize
| | | * fix testsStanislav Malyshev2016-06-201-1/+1
| | | |
| | | * fix buildStanislav Malyshev2016-06-201-1/+1
| | | |
| | | * Fix bug #72455: Heap Overflow due to integer overflowsStanislav Malyshev2016-06-201-42/+50
| | | |
| | | * Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP's GC ↵Stanislav Malyshev2016-06-202-0/+42
| | | | | | | | | | | | | | | | algorithm and unserialize
| | | * Fixed ##72433: Use After Free Vulnerability in PHP's GC algorithm and ↵Stanislav Malyshev2016-06-203-1/+44
| | | | | | | | | | | | | | | | unserialize
| | | * Fix bug #72407: NULL Pointer Dereference at _gdScaleVertStanislav Malyshev2016-06-181-0/+3
| | | |
| | | * Fix bug #72402: _php_mb_regex_ereg_replace_exec - double freeStanislav Malyshev2016-06-182-33/+49
| | | |
| | | * Fix bug #72298 pass2_no_dither out-of-bounds accessStanislav Malyshev2016-06-182-7/+22
| | | |
| | | * Fixed #72339 Integer Overflow in _gd2GetHeader() resulting in heap overflowPierre Joye2016-06-183-0/+18
| | | |
| | | * Fix bug #72262 - do not overflow intStanislav Malyshev2016-06-151-107/+111
| | | |
| | | * Fix bug #72400 and #72403 - prevent signed int overflows for string lengthsStanislav Malyshev2016-06-152-49/+72
| | | |
| | | * Fix bug #72275: don't allow smart_str to overflow intStanislav Malyshev2016-06-141-7/+10
| | | |
| | | * Fix bug #72340: Double Free Courruption in wddx_deserializeStanislav Malyshev2016-06-122-0/+28
| | | |
| | * | update NEWSAnatol Belski2016-06-131-0/+3
| | | |
| | * | Fix #66387: Stack overflow with imagefilltoborderChristoph M. Becker2016-06-132-0/+19
| | |/ | | | | | | | | | | | | | | | | | | The stack overflow is caused by the recursive algorithm in combination with a very large negative coordinate passed to gdImageFillToBorder(). As there is already a clipping for large positive coordinates to the width and height of the image, it seems to be consequent to clip to zero also.
| | * Skip test which is 64bits onlyRemi Collet2016-05-251-0/+2
| | | | | | | | | | | | | | | | | | Diff from test output 001+ Warning: fread(): Length parameter must be greater than 0 in ... 001- Warning: fread(): Length parameter must be no more than 2147483647 in ...
| | * 5.5.37 nowJulien Pauli2016-05-253-4/+7
| | |
| * | Fix bug #72321 - use efree() for emalloc allocationStanislav Malyshev2016-06-124-2/+28
| | |
| * | 5.6.23RC1php-5.6.23RC1Ferenc Kovacs2016-06-093-4/+4
| | |
| * | Fix bug #72140 (segfault after calling ERR_free_strings())Jakub Zelenka2016-06-082-0/+7
| | |
| * | prevent invalid color index (palette only), may lead to crashPierre Joye2016-06-082-0/+49
| | |
| * | Add CVE to #66387Lior Kaplan2016-06-071-1/+2
| | |
* | | fix NEWSphp-7.0.8RC1Anatol Belski2016-06-071-0/+3
| | |
* | | Merge branch 'PHP-7.0' into PHP-7.0.8Anatol Belski2016-06-073-1/+51
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-7.0: fix NEWS add missing NEWS entry update NEWS #72337 invalid dimensions can lead to segv 7.0.9 next Conflicts: configure.in main/php_version.h
| * | | fix NEWSAnatol Belski2016-06-071-1/+4
| | | |
| * | | Merge branch 'PHP-5.6' into PHP-7.0Anatol Belski2016-06-070-0/+0
| |\ \ \ | | |/ / | | | | | | | | | | | | * PHP-5.6: add missing NEWS entry
| | * | add missing NEWS entryAnatol Belski2016-06-071-0/+3
| | | |
| * | | update NEWSPierre Joye2016-06-071-1/+1
| | | |
| * | | Merge branch 'PHP-7.0' of git.php.net:php-src into PHP-7.0Pierre Joye2016-06-073-5/+9
| |\ \ \
| | * | | 7.0.9 nextAnatol Belski2016-06-073-5/+9
| | | | |
| * | | | Merge branch 'PHP-5.6' into PHP-7.0Pierre Joye2016-06-073-1/+51
| |\ \ \ \ | | |/ / / | |/| / / | | |/ / | | | | * PHP-5.6: #72337 invalid dimensions can lead to segv
| | * | #72337 invalid dimensions can lead to segvPierre Joye2016-06-073-1/+51
| | | |
* | | | set versionsAnatol Belski2016-06-073-4/+4
|/ / /
* | | Merge branch 'PHP-5.6' into PHP-7.0Anatol Belski2016-06-061-0/+32
|\ \ \ | |/ / | | | | | | | | | * PHP-5.6: Add test for bug #53735
| * | Add test for bug #53735Anatol Belski2016-06-061-0/+32
| | |
* | | fix ibase handle initialization, mostly compiler warningsAnatol Belski2016-06-063-4/+10
| | |
* | | Merge branch 'PHP-5.6' into PHP-7.0Anatol Belski2016-06-061-1/+1
|\ \ \ | |/ / | | | | | | | | | * PHP-5.6: fix typo
| * | fix typoAnatol Belski2016-06-061-1/+1
| | |
View Lorry Controller Status